Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/022xJJgAG1CjnJj2EDIe3A_1lG8.roa
File: 022xJJgAG1CjnJj2EDIe3A_1lG8.roa (raw, json)
Hash identifier: Lk7N3gkgY+33cWkwB9ez/0Z5SrbIWw+METrsdQQWcow=
Subject key identifier: D3:6D:B1:24:98:00:1B:50:A3:9C:98:F6:10:32:1E:DC:0F:F5:94:6F
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018ACC32D20B6AE2BC2232D4212EACDD83E1
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/022xJJgAG1CjnJj2EDIe3A_1lG8.roa
Signing time: Mon 25 Sep 2023 11:56:37 +0000
ROA not before: Mon 25 Sep 2023 11:56:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15890
IP address blocks: 2a00:ec83::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:32:d2:0b:6a:e2:bc:22:32:d4:21:2e:ac:dd:83:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Sep 25 11:56:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d36db12498001b50a39c98f610321edc0ff5946f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c4:ad:a1:1d:9f:0c:ff:9c:56:98:a9:47:c5:
4f:15:8f:85:5e:9f:22:43:53:25:13:f7:b2:15:98:
92:70:e6:52:4c:2a:7a:ec:b7:96:c5:97:d9:83:fd:
48:29:17:e4:5d:64:4f:ee:27:a4:de:79:d6:59:b4:
a9:e0:c7:09:69:49:55:30:86:13:63:77:b5:05:8c:
de:3e:c5:2c:ae:0c:60:a4:0f:57:28:6e:c5:48:af:
bb:83:4c:3c:ff:33:9e:0f:7c:99:8d:0b:7f:e2:3f:
9c:59:12:4c:82:68:0c:18:df:31:8a:ab:bb:34:da:
40:a5:bb:ef:7d:f5:29:a0:cb:9a:0a:16:e6:9d:bd:
3d:5e:05:af:a9:8c:e2:ca:82:26:61:38:a8:87:10:
70:7b:e6:fd:14:d9:e0:9c:f1:79:6a:4a:15:f2:d6:
9f:b0:83:8a:73:63:7e:09:b4:7f:93:bc:98:99:d1:
ed:8f:a6:f2:06:00:39:11:4c:ed:54:1f:26:89:8e:
a9:7f:6e:74:1f:a2:3c:41:ab:82:2c:e0:f9:5d:f2:
3e:70:db:83:fc:b7:52:03:1d:7e:18:52:3f:ac:7a:
f5:99:b1:1b:c5:74:92:14:be:53:39:d9:19:d2:83:
52:71:29:15:2c:00:44:2d:cd:ba:7f:c0:28:30:a0:
ad:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6D:B1:24:98:00:1B:50:A3:9C:98:F6:10:32:1E:DC:0F:F5:94:6F
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/022xJJgAG1CjnJj2EDIe3A_1lG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:ec83::/32
Signature Algorithm: sha256WithRSAEncryption
78:f5:94:b6:54:40:05:b3:ce:bc:a1:12:ca:62:6f:6b:6a:de:
4a:e3:cd:ec:6d:b5:e2:fe:ff:4a:50:2d:ee:2d:fe:6b:06:b0:
40:15:f7:1a:53:3a:42:2d:28:2f:b1:75:e0:55:21:44:50:f7:
58:f8:f6:af:a8:a4:7c:e4:b7:2c:8c:98:ae:01:f5:d5:71:97:
bd:3d:71:f4:04:4c:d6:b8:01:1d:c1:08:14:10:65:5e:35:d8:
bf:72:05:94:bc:79:d8:26:18:53:42:58:24:9f:71:9b:15:29:
57:d7:59:8f:49:fd:58:04:a3:1b:67:44:f5:43:98:87:3b:21:
a7:89:12:6f:f3:1a:d2:3e:29:95:bb:3f:c3:91:4c:d1:00:ca:
e9:5c:cf:bf:a8:48:ca:7a:46:17:c6:71:2e:3d:d2:d6:a8:7b:
8c:93:ba:1c:c5:f7:8f:ac:0f:8c:85:f3:85:2c:d4:4f:09:28:
c2:c8:76:4f:df:94:bf:fc:02:68:b3:5f:eb:c0:d3:51:84:aa:
bb:4d:5d:8c:93:4b:20:00:ea:b7:9b:88:d4:b2:a1:a2:ba:16:
c1:5d:a0:04:f8:43:60:24:59:95:5b:1e:19:85:46:4e:eb:12:
22:62:2c:18:6e:17:91:95:1d:33:ed:07:04:41:9b:02:ab:16:
bc:0e:7f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org